WO2005076930A2 - Wi-fi service delivery platform for wholesale service providers - Google Patents

Wi-fi service delivery platform for wholesale service providers Download PDF

Info

Publication number
WO2005076930A2
WO2005076930A2 PCT/US2005/003638 US2005003638W WO2005076930A2 WO 2005076930 A2 WO2005076930 A2 WO 2005076930A2 US 2005003638 W US2005003638 W US 2005003638W WO 2005076930 A2 WO2005076930 A2 WO 2005076930A2
Authority
WO
WIPO (PCT)
Prior art keywords
subscribers
local area
area networks
gateway
retail service
Prior art date
Application number
PCT/US2005/003638
Other languages
French (fr)
Other versions
WO2005076930A3 (en
Inventor
Asawaree Kalavade
Kevin Jackson
Jeremy Greene
Eric Bomarsi
Original Assignee
Tatara Systems, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tatara Systems, Inc. filed Critical Tatara Systems, Inc.
Publication of WO2005076930A2 publication Critical patent/WO2005076930A2/en
Publication of WO2005076930A3 publication Critical patent/WO2005076930A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/51Discovery or management thereof, e.g. service location protocol [SLP] or web services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/51Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP for resellers, retailers or service providers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2215/00Metering arrangements; Time controlling arrangements; Time indicating arrangements
    • H04M2215/20Technology dependant metering
    • H04M2215/2026Wireless network, e.g. GSM, PCS, TACS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2215/00Metering arrangements; Time controlling arrangements; Time indicating arrangements
    • H04M2215/32Involving wireless systems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2215/00Metering arrangements; Time controlling arrangements; Time indicating arrangements
    • H04M2215/54Resellers-retail or service providers billing, e.g. agreements with telephone service operator, activation, charging/recharging of accounts
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W74/00Wireless channel access, e.g. scheduled or random access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • WI-FI SERVICE DELIVERY PLATFORM FOR WHOLESALE SERVICE PROVIDERS Related Application This application is based on and claims priority from Provisional Application Serial No. 60/542,358 filed on February 6, 2004, and Utility Application Serial No. 10/871,412, both entitled WI-FI SERVICE DELIVERY PLATFORM FOR WHOLESALE SERVICE
  • the present invention relates generally to data networks and, more particularly, to a delivery platform for providing public wireless LAN (i.e., "Wi-Fi") service.
  • Wi-Fi public wireless LAN
  • Wireless data technologies are used to provide Internet and other network access to mobile client devices such as, e.g., laptops and personal digital assistants (PDAs).
  • PDAs personal digital assistants
  • LANs wireless local area networks
  • ente ⁇ rises and universities are now widely deploying wireless local area networks (LANs) based on the IEEE 802.11 standard. Users with client devices such as laptops and PDAs use an 802.11 network interface card that allows them wireless access to the Internet.
  • a method for managing usage of a plurality of local area networks by a plurality of subscribers.
  • Each subscriber is associated with one of a plurality of retail service providers.
  • the subscribers each have a terminal for accessing one or more of the local area networks.
  • the method includes the steps of: (a) receiving at a gateway at a wholesale service provider network a request from the one of the plurality of local area networks for authenticating the one of the plurality of subscribers.
  • the request contains subscriber credentials for the one of the plurality of subscribers; (b) forwarding the subscriber credentials to a retail service provider with which the one of the plurality of subscribers is associated; (c) receiving from the retail service provider authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (d) authorizing the one of the plurality of local area networks to grant access to the one of the plurality of subscribers when the one of the plurality of subscribers is authenticated; (e) receiving session information from the one of the plurality of local area networks on usage of the one of a plurality of local area networks by the one of the plurality of subscribers; and (f) transmitting the information received on local area network usage to the retail service provider for use in billing the one of the plurality of subscribers.
  • a gateway for deployment at a wholesale service provider network for managing usage of a plurality of local area networks by a plurality of subscribers.
  • Each subscriber is associated with one of a plurality of retail service providers.
  • the subscribers each have a terminal for accessing one or more of the local area networks.
  • the gateway includes: a first interface module for communicating with the plurality of local area networks; and a second interface module for communicating with the plurality of retail service providers.
  • the gateway also includes a manager for receiving through the first interface module requests from the plurality of local area networks for authenticating subscribers desiring access to the plurality of local area networks. The requests contain subscriber credentials for the subscribers.
  • the manager transmits through the second interface module the subscriber credentials to respective retail service providers with which the subscribers are associated.
  • the manager receives from the retail service providers through the second interface module authorization to grant subscribers access to respective local area networks when the subscribers are authenticated based on subscriber credentials and information relating to the subscribers previously stored in a subscriber database.
  • the manager authorizes the local area networks to grant access to authenticated subscribers through the first interface module.
  • the manager also receives session information from the plurality of local area networks on usage of the local area networks by the subscribers.
  • the manager transmits the information received on local area network usage to the retail service providers for use in billing the plurality of subscribers.
  • a method is provided for managing usage of a plurality of local area networks by a plurality of subscribers.
  • Each subscriber is associated with one of a plurality of retail service providers.
  • the subscribers each have a terminal for accessing one or more of the local area networks.
  • the method comprises the steps of: (a) receiving at a retail service provider associated with the one of the plurality of subscribers a request from the one of the plurality of local area networks for authenticating the one of the plurality of subscribers.
  • the request is received via a gateway at a wholesale service provider network.
  • the request contains subscriber credentials for the one of the plurality of subscribers; (b) authenticating the one of the plurality of subscribers based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (c) transmitting to the gateway authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated.
  • the gateway transmits to the one of the plurality of local area networks authorization to grant access to the one of the plurality of subscribers; and (d) receiving from the one of the plurality of local area networks via the gateway information on local area network usage by the one of the plurality of subscribers for use in billing the one of the plurality of subscribers.
  • FIGURE 1 is a simplified diagram of a Wi-Fi service delivery platform for wholesale service providers in accordance with one or more embodiments of the invention
  • FIGURE 2 is a simplified diagram of a Wi-Fi service delivery platform for retail service providers in accordance with one or more embodiments of the invention
  • FIGURE 3 is a simplified diagram of a Partner Gateway deployment in accordance with one or more embodiments of the invention
  • FIGURE 4 is a simplified diagram of a Partner Gateway cluster in accordance with one or more embodiments of the invention
  • FIGURE 5 is a simplified diagram of components of a Partner Gateway in accordance with one or more embodiments of the invention
  • FIGURE 6 is a simplified diagram of the system architecture of a Partner Gateway in accordance with one or more embodiments of the invention
  • FIGURE 7 is a simplified diagram of cluster details of a Partner Gateway in accordance with one or more embodiments of the invention
  • FIGURE 8 is a simplified diagram of multi-site Partner Gateway clusters in accordance with one or more embodiments of the invention
  • FIGURE 9 is a simplified diagram
  • the present application relates to a Wi-Fi Service Delivery Platform having components that can function independently or can work together to deliver the broad set of Wi-Fi capabilities.
  • the platform accelerates the path to profitability for public wireless LAN (Wi-Fi) service providers by enabling both retail and wholesale service providers to profitably support roaming relationships - or even become "virtual providers" of public Wi-Fi services - without sacrificing security, control or advanced capabilities.
  • Wi-Fi Service Delivery Platform has components that serve the needs of both retail service providers and wholesale operators or aggregators in the public Wi-Fi services space.
  • Wholesale Solution Wholesale operators, including aggregators are challenged to maximize the value of their network assets through inbound roaming.
  • a Wi-Fi Service Delivery Platform in accordance with one or more embodiments of the invention for wholesale operators includes a Partner Gateway, which is a centrally deployed and managed network device that facilitates partnerships and enables inbound roaming on Wi-Fi networks owned or controlled by a Wi-Fi aggregator.
  • the Partner Gateway enables a Wi-Fi wholesale network operator to configure and support inbound roaming relationships easily and securely with a broad range of retail service provider partners.
  • the system manages the real-time delivery of AAA or GSM MAP information to these partners from a central platform, supports delivery of local venue services and feeds roaming usage information to a wholesale billing/settlement platform or external clearinghouse.
  • the Partner Gateway is a standards-based platform which does not require that the retail partners have any specific infrastructure other than a RADIUS server or terminating HLR.
  • Retail Solution Retail service providers - providers who own direct relationships with end users - are constantly challenged to excel at meeting the needs of their end users.
  • these needs can include, e.g., (1) broad service coverage across key venues, (2) a simple, reliable and high-quality end user experience, (3) ente ⁇ rise-quality security in a public environment, (4) access to a suite of local and global applications, (5) ente ⁇ rise-level management of end user usage and costs, and (6) affordable pricing plans for ente ⁇ rise and individual users.
  • These needs can run counter to one another.
  • broad coverage implies many roaming partners - but this can have a negative impact on the simplicity of the end user experience and security.
  • Reliable, high-quality service is facilitated by ownership of the backhaul - but this can ruin the economics of the business and make affordable pricing impossible.
  • the Wi-Fi Service Delivery Platform for retail service providers can include two components: a Subscriber Gateway and a Service Manager.
  • the Subscriber Gateway is a centrally deployed and managed network device that controls multiple aspects of Wi-Fi services for a branded retail service provider.
  • the Subscriber Gateway enables retail service providers to work with a broad set of roaming partners. It facilitates these partnerships through automated configuration and management capabilities and extends control by delivering a unique set of audit and visibility capabilities.
  • a rich set of real-time presence, location and reachability capability works in conjunction with the Service Manager software to enable the branded retail service provider to maintain unprecedented control over their end subscribers. This same capability provides significant visibility into critical usage and performance data and ensures the consistent delivery of advanced services.
  • the Subscriber Gateway does not require the deployment of any proprietary hardware or software on a partner network, nor does it require expensive backhaul changes to the network like many alternative solutions.
  • the Service Manager is client software that runs on an end user's Wi-Fi enabled laptop or PDA or other portable client device. Issued by the retail service provider who owns the relationship with the end user, the Service Manager software provides a carrier-branded user interface and secure connection management capability across multiple networks (e.g.
  • the Service Delivery Platform in accordance with one or more embodiments can include several advantageous features and capabilities. For instance, the platform can provide (1) carrier- grade reliability via a clustered and load balanced architecture, (2) enhanced network management and alerting support via SNMP events, (3) RAID support, and (4) configurable backup and restore support.
  • Capabilities of a Partner Gateway in accordance with one or more embodiments for a wholesale service provider can include (1) an advanced roaming partner policy management capability, allowing management of subsets of Wi-Fi footprint, (2) wizards to simplify configuration of roaming relationships, and (3) an ODBC interface to export records to external systems for easy reporting and data manipulation by operators.
  • wholesale solutions in accordance with one or more embodiments of the invention can include one or more of the following advantageous features: 1.
  • the solution can provide brokering of Wi-Fi networks without requiring hardware to be deployed at partner hotspot networks. This can be accomplished by the Partner Gateway being able to connect to standards based input from hotspots. 2.
  • the solution can provide brokering without requiring dedicated backhaul connections to the wholesale provider network.
  • the solution can provide the ability to manage Wi-Fi roaming partnerships including technical and business agreements. This can be accomplished via an easy to manage user interface that supports a number of complex parameters. 4.
  • the solution can enable authentication with SS7 networks. This can be accomplished by the Partner Gateway functioning as a VLR for GSM/GPRS networks. 5.
  • the solution can support wholesale operations with different types of retail providers, including CDMA, GSM/GPRS, Wireline, Cable, etc. This can be accomplished by the Partner Gateway providing a generic modular architecture. 6.
  • the solution can provide a turnkey platform that integrates into an existing wholesale operator's network architecture. This can be accomplished by the Partner Gateway providing standard interfaces with a number of core OSS/BSS systems. 7.
  • the solution can support hierarchical roaming agreements. This can provide the wholesale operator the ability to integrate with other wholesale operators.
  • the Partner Gateway can have the ability to manage hierarchical domains for proxy.
  • the solution can support footprint policy management. This capability can provide the ability to specify and enforce policies on the subset of Wi-Fi networks that are made available to different retail provider partners.
  • the wholesale solution in accordance with one or more embodiments can address several key challenges in aggregating and wholesaling public Wi-Fi services. These can include: (1) aggregation and management of heterogeneous Wi-Fi footprint operators, (2) brokering and managing technical and business agreements between Wi-Fi footprint operators and retail service providers, and (3) turnkey deployment, while leveraging existing infrastructure for billing and settlement.
  • Partner Gateway Capability Details
  • a Partner Gateway in accordance with one or more embodiments of the invention can offers functionality around the following areas: (1) Partner and Location Management: Partner and location management address management of logistics associated with the Wi-Fi service, including roaming partner setup, Wi-Fi footprint and location management.
  • IP and SS7 authentication Brokering Manages brokering of authentication information between Wi-Fi network operators and retail service providers for both IP and SS7 based authentication mechanisms.
  • Usage Reporting and Settlement Enables generation of usage information for settlement and reporting, and enables delivery of usage information to retail partners for end- user billing.
  • Wi-Fi network partner configuration including Wi-Fi network partner configuration, retail service provider partner configuration, and Wi-Fi footprint management through HTML-based GUI or through automated scripts in the CLI.
  • Partner Policy Management Wholesale operators can have the ability to specify and enforce policies on footprints available to different partners. For instance, some retail partners may be allowed to access a subset of the hotspot partners that are part of the wholesale operator's total footprint. The Partner Gateway partner policy management capability allows the configuration of such policies.
  • Location Management This capability enables wholesale operators to capture and manage the database of home and partner network locations, including automated import and export of partner locations in customizable or other formats. Location directory information may be delivered to retail partners for distribution to end-users customers.
  • IP and SS7 authentication brokering The Partner Gateway can allow wholesale operators to manage brokering of authentication information between Wi-Fi network operators and retail service providers.
  • IP Authentication This functionality can support secure proxy of RADIUS information (MD5, PEAP, EAP SIM) from Wi-Fi operators to appropriate realms in retail service provider networks.
  • SS7 Authentication This functionality can support SS7 authentication over GSM MAP for GSM partner networks - the Partner Gateway functions as a VLR from the point of view of the HLR in the retail service provider network.
  • Usage Reporting and Settlement This functionality enables the generation of usage information for settlement and reporting, and enables delivery of usage information to retail partners for end-user billing: Wi-Fi Accounting Generation: The Partner Gateway can collect usage information for each session, augments it with Wi-Fi specific information and captures it in a Data Record (TDR). Usage Delivery: The collected usage information is delivered to billing and settlement systems.
  • the output format may be TAP3 (vlO) or any other customizable format.
  • Reporting Real-time reporting of usage, based on Wi-Fi partners, retail partners, locations, and time; reports can be viewed graphically as well as delivered via FTP to other systems.
  • An ODBC interface is provided in the Partner Gateway, whereby usage records may be accessed from a third party system for further analysis and reporting.
  • the Partner Gateway can support generation of settlement records via TAP3 or customized formats for settlement between Wi-Fi and retail partners.
  • Partner Gateway Deployment FIGURE 3 shows a typical deployment architecture for the Partner Gateway in accordance with one or more embodiments of the invention in a wholesale operator's network and demonstrates how a wholesale operator may be able to offer wholesale Wi-Fi services on its aggregated Wi-Fi footprint. As shown in the figure, the Partner Gateway is deployed in the wholesale operator's network operations center.
  • Wi-Fi operator network interfaces The Partner Gateway interfaces with the Wi-Fi network over an IP interface. Note that the Partner Gateway is a control path product and does not require dedicated backhaul from the Wi-Fi network to the Partner Gateway. It also does not require the deployment of any additional equipment at the hotspot.
  • the Wi-Fi networks forward authentication information to the Partner Gateway.
  • Retail service provider network interfaces The Partner Gateway forwards retail subscriber authentication requests to the retail service provider core network. This can be either a SS7 request to the retail service provider's HLR or an IP RADIUS request. For instance, if the wholesale operator wholesales its service to a GSM provider, the Partner Gateway may allow SS7 based authentication into the GSM network. Similarly, the Partner Gateway also provides RADIUS proxy interface to other partner networks, including CDMA operators, wireline operators, or GSM operators that don't want to use SS7 authentication. The Partner Gateway also generates settlement and reporting data for the wholesale Wi-Fi service.
  • This can be either a SS7 request to the retail service provider's HLR or an IP RADIUS request. For instance, if the wholesale operator wholesales its service to a GSM provider, the Partner Gateway may allow SS7 based authentication into the GSM network. Similarly, the Partner Gateway also provides RADIUS proxy interface to other partner networks, including CDMA operators, wireline operators, or GSM operators that don't want to use SS7
  • the Partner Gateway in accordance with one or more embodiments is a carrier-class gateway preferably running an embedded, hardened, real-time operating system based on the Linux Debian kernel.
  • the Partner Gateway can be deployed in a clustered architecture that provides reliability as well as load balancing. Clustering is generally driven by two requirements: (1) high availability service, providing 99.999% reliability, without loss of usage data for billing pu ⁇ oses or loss of service experience by end users; and (2) performance improvement through scaling.
  • FIGURE 4 One example of the overall clustered solution is described in FIGURE 4.
  • the Partner Gateway cluster is deployed in the service provider network. The cluster is addressed by a single virtual address. The IP address is owned by the node that is the cluster 'master' (typically the node with the lower ID).
  • RADIUS clients/proxies communicate with the virtual IP address. This request is received by the cluster master, which assigns the transaction to the appropriate node in the cluster. On the back end, each Partner Gateway communicates with the subscriber database or HLR for authentication. Mediation systems retrieve data from one of the nodes in the cluster, since usage information is replicated on both nodes. The nodes within the cluster exchange heartbeat messages for checking the health of the cluster.
  • This solution in accordance with one or more embodiments of the invention meets the two requirements required of a clustered solution. First, even if one node were to go down, there is no loss of data or service interruption. Preferably, all usage data is replicated on each cluster; as a result there is no loss of data for billing pu ⁇ oses.
  • the Partner Gateway device can be configured and managed through any of several mechanisms.
  • a robust, secure, web-based management interface enables full configuration and device management from any standard web browser.
  • a command line interface (CLI) provides full configuration and management capabilities and allows for easy scripting by a carrier of common command sequences.
  • a SNMPv3 interface allows the Partner Gateway to be configured remotely and managed through an external network management system.
  • a variety of user privilege levels and security settings can be used to prevent unauthorized management system access and allow graduated user access for various functional operations.
  • Partner Gateway System Architecture
  • the software modules in the Partner Gateway platform in accordance with one or more embodiments of the invention are shown by way of example in FIGURE 5.
  • the modules include: 1. Partner: This module manages the various aspects of partner management, as described earlier. 2.
  • RADIUS This module implements a RADIUS interface to connect with the RADIUS clients deployed in Wi-Fi hotspots. It can support the standard RFCs, including 2865, 2866, 2869.
  • the RADIUS module proxies messages to the retail service provider network.
  • 3. Authentication This module supports the core authentication modules, including all the 802. lx protocols such as MD5, PEAP, and EAP SIM.
  • SS7 This module implements the SS7 interface to HLRs using GSM MAP (29.002).
  • Session Manager This module implements the real-time session management capability in the system. Preferably, it maintains real-time state for all the active sessions in the system and writes usage data to the TDR collection module.
  • TDR Collection This module stores session usage data and provides management access including report generation.
  • Mediation This module provides the external interface with mediation, rating and settlement platforms via FTP. Data is formatted into GCDR or TAP3 formats and can be delivered to the downstream systems. Additional support for IPDR is planned in an upcoming release.
  • System Management This forms the underlying management layer within the platform. It is preferably based on SNMP and is used to control the underlying management of the platform. Both the Web interface and Command Line Interface (CLI) utilize the management layer for consistency and completeness.
  • CLI Command Line Interface
  • FIGURE 6 illustrates the system architecture of a Partner Gateway in accordance with one or more embodiments of the invention.
  • RADIUS provides external connectivity on the IP side.
  • the RADIUS module interfaces with the RADIUS client or proxy in the hotspot network to receive RADIUS authentication and accounting messages.
  • the RADIUS messages are then proxied to the appropriate service provider network, depending on the proxy relationships.
  • the Session Manager is the central module, which interfaces with the other system modules. When it receives RADIUS requests from the RADIUS module, it creates a new session. As RADIUS sessions are proxied through the system, it tracks the session information. In the case of SS7 authentications, the authentication module converts EAP SIM messages and passes them to the HLR. As the session progresses, the Session Manager collects usage information. At the end of the session, the Session Manager generates a session TDR (Data Record). The TDR is sent to the TDR collection module at the end of the session.
  • TDR Data Record
  • the Mediation module formats the TDR to a format acceptable by the external mediation/settlement systems and delivers the data to mediation/settlement systems for further processing by the service provider infrastructure.
  • the underlying system is managed through an SNMP infrastructure, which can be accessed via the HTTP/S interface as well as the command line interface.
  • CLI is accessible locally or remotely via Telnet and SSH. Operations that require file transfers are supported with an embedded FTP client and server. Extemal database access to accounting records and reports is supported via the ODBC interface.
  • the partner and location management functionality is accessed through either of these interfaces and the data is stored internally within the Partner Gateway. Details of the clustered solution are described through FIGURE 7. As shown in the figure, the session manager replicates information across the cluster. As a result, TDRs and
  • CTDRs are processed by both systems. This ensures that usage is available in both nodes in the event of a failure. Wl en a new node is added into the cluster, it first synchronizes the database before becoming active within the cluster. This ensures that the bulk of synchronization is done before it enters the cluster for better performance. Multi-site clustering for increased reliability and disaster recovery can also be supported.
  • FIGURE 8 An overview of a deployment is shown in FIGURE 8. As shown in the figure, multiple Partner Gateway clusters can be deployed in different sites. Each cluster has its own IP address. The RADIUS clients or proxies in the Wi-Fi network use their primary and secondary RADIUS server configurations to point to the two clusters.
  • the multi-site clusters can be deployed in a number of ways, including the following: (1) Load distribution mode: In this case, some RADIUS clients point to one cluster as the primary and use the second cluster for a backup, while other RADIUS clients point to the other cluster as a primary. This deployment provides geographic load sharing. (2) Back up mode: An alternative is to use one cluster as the primary cluster for all traffic and the second cluster as the backup. Note that this solution does not replicate sessions across clusters; it replicates usage data for completed sessions across the clusters. This guarantees service operation but there might be some loss of session information while the backup cluster kicks in. Frequent backup of data allows most billing information to be captured.
  • Partner Gateway Software Architecture The different modules within the Partner Gateway are called "subsystems.” Each subsystem is derived from the base subsystem class that provides control, management, and integration services. The following summarizes the services provided by the base class. 1. Execution Control (a) Startup -a master process starts and restarts each subsystem in the event of a crash, but prevents rapid restarting. (b) Control loop - main process loop for supporting all common subsystem services with hooks for subsystem specific functions. (c) Resource Limits - Memory, CPU, and Stack limits prevent single process from starving the rest of the system. (d) Signal Handlers - Handlers for all Unix signals prevent uncaught signals from terminating subsystems.
  • Event Logging (a) Registration of subsystem specific events with the central Event Log. (b) Event filtering through management (by level, subsystem, or event ID). (c) Real time event logging to the central Event Log subsystem. 3. Timers (a) Support for asynchronous, one-shot or repeatable timers, (b) Granularity down to microseconds. 4. InterProcess Communications (IPC) (a) Support for message and C++ object passing with other subsystems. (b) Uses reliable Unix Domain Sockets. (c) Non blocking, queued sends prevent unwanted context switching. (d) Detection when remote subsystem goes up or down. 5.
  • IPC InterProcess Communications
  • SNMP Subagent (a) Maintains an IPC connection to the central SNMP Master Agent (MA). (b) Supports a common Subsystem MIB for monitoring the process state, memory usage, IPC status, and the like. (c) Supports registration of subsystem specific MIBs with the Master Agent. 6.
  • Cluster Membership (a) Subsystems can declare themselves as "cluster-aware" in the constructor. (b) A cluster-aware subsystem receives notifications when other nodes in the cluster come up or go down. (c) Cluster- aware subsystems require external IPC connections to pass messages to other nodes in the cluster (the subsystem base class supports internal and external reliable IPC support).
  • FIGURE 9 illustrates an example of how two gateway subsystems can be integrated. Both Subsystems are derived from the base Subsystem that provides all the services listed above. Both have an event client that connects to the central Event Log and an SNMP
  • the Authentication subsystem provides an API to the Radius subsystem.
  • the API methods send and receive non-blocking PC messages to/from the Auth subsystem.
  • Data Record TDR: As mentioned earlier, the Partner Gateway stores session information in an internal data format called the Data Record.
  • the TDR collects usage generated by RADIUS, and augments it with Wi-Fi specific information such as location and service plans. Table 1 below shows the attributes of the Data Record. These augment information from the RADIUS record with location and service plan information.
  • Partner Gateway Operation The operation of the system is described next. The operation can be divided into three steps: (a) system setup, (b) service setup, (c) run-time operation.
  • System Setup The system setup process includes starting and configuring the Partner Gateway. Parameters that are typically configured include the network settings (IP address, DNS, DHCP, etc.), SS7 settings (link settings, point codes, etc.) as well as security settings (certificate management). These configuration options are available from the different tabs on the Partner Gateway interface.
  • Service Setup The service setup process involves configuring the system to set up Wi-Fi partner information as well as to set up connections to the retail service providers. (Note that the Partner Gateway does not require or assume the presence of a Subscriber Gateway to deliver its whole set of services.)
  • Wi-Fi Operator Partner Configuration This step allows the wholesale service provider to configure Wi-Fi network connection settings for all its footprint partners. This includes specifying the RADIUS clients, associated shared secrets, and the like so that the hotspot partner can send RADIUS information to the Partner Gateway. As part of partnership setup, the partner also needs to configure its RADIUS server to proxy authentication and accounting requests to the Partner Gateway.
  • Retail Service Provider Configuration This step allows the wholesale service provider to configure the proxy settings for the retail service provider partner. In this case, the retail service provider actually provides service to their end customer, while getting footprint from the wholesale operator. The configuration involves setting the right proxy settings so that the Partner Gateway can forward requests authentication requests to the retail provider's network.
  • this step would also involve configuration of the SS7 settings such as point codes.
  • steps 1 and 2 if, e.g., ABC Wireless is the retail service provider, Wi-Fi Operator is the hotspot operator, and Aggregator is the wholesale operator, then when user@abcwireless.aggregator.com comes to the hotspot: The Wi-Fi operator RADIUS proxy forwards abcwireless.aggregator.com requests to Aggregator's network (as part of configuration step 1). The Partner Gateway then proxies user@abcwireless.com to the RADIUS servers in ABC Wireless' infrastructure.
  • the wholesale service provider configures Wi-Fi footprint information. This can be done by specifying the location information associated with each partner.
  • the location information includes a list of AP's, NAS, etc. that are part of the footprint as well as address, phone number, and the like. This information can be used to generate a location directory that is communicated to the retail service provider.
  • the retail service provider sends the location directory to their customers. Note that as new partners are added or as new locations are added, the operator can configure the system to add the new information without affecting the run-time operation of the system.
  • the Partner Gateway automatically generates the updated location directory that can be used for distribution to the client.
  • the mediation interface on the Partner Gateway can deliver formatted mediation records to the downstream mediation or settlement systems in the aggregator network.
  • Typical configurations on the mediation system include setting the location of the mediation system, configuring the frequency of mediation runs, etc.
  • the wholesale operator signs up footprint partnerships and makes the footprint available to their retail service provider partners.
  • the retail service provider's customers come to the aggregated hotspots. No requirements are made on the retail provider network or on the client running on the retail subscriber's terminal.
  • the following sequence of events describes exemplary operation of the Partner Gateway when a retail service provider's customer (e.g. user@abcwireless) enters a hotspot operated by the wholesale operator's Wi-Fi partner (see
  • FIGURE 10 for a specific call flow.
  • User comes to a hotspot and provides authentication credentials. For instance, a customer of ABC Wireless sends his login information as user@abcwireless.aggregator.com.
  • the authentication information is received by the hotspot RADIUS client and forwarded (via possible intermediate proxy servers) to the Partner Gateway.
  • the RADIUS proxy in the hotspot network is configured to forward realm-based requests to the appropriate Partner Gateway in the service provider network.
  • the RADIUS module in the Partner Gateway receives the authentication request and proxies it to the appropriate retail service provider network, in this case, to ABC Wireless. Recall that this proxy configuration was set up as part of the retail provider configuration process. 4.
  • the Partner Gateway receives EAP SIM messages.
  • the Partner Gateway can process this in one of two ways. First, the Partner Gateway can proxy EAP SIM to the retail service provider's RADIUS server. Second, the Partner Gateway can send GSM MAP messages to the retail service provider's HLR. 5. The retail provider authenticates the user and sends the response back to the Partner Gateway, which then proxies it to the hotspot operator. 6. The Partner Gateway creates and maintains a session for this subscriber. 7. As the session proceeds, the hotspot RADIUS server/proxy sends RADIUS accounting messages to the Partner Gateway. 8. The accounting information is sent to the Session Manager in the Partner Gateway as well as proxied to the retail provider's network. 9.
  • the Session Manager updates the session status with usage information. 10. When the session terminates, RADIUS receives a session stop message. The Partner Gateway also proxies this information to the retail provider network. 11. The Session Manager updates the session information and generates a TDR (Data Record). This record is sent to the TDR collection module. 12. The usage information for all sessions is collected in an internal SQL database. 13. Usage reports based on time, location, partner, etc. may be run on the internal SQL database via the Partner Gateway user interfaces. 14. The Mediation module runs at a programmable frequency and converts the TDRs into the appropriate format records (e.g. GPRS CDRs or TAP3 records) and delivers them to the mediation or settlement system for use by the wholesale operator.
  • the appropriate format records e.g. GPRS CDRs or TAP3 records
  • an administrator can use the Web or CLI interface on the Partner Gateway to manage the gateway at any time.
  • the service delivery platform thereby enables wholesale service providers to aggregate and wholesale Wi-Fi services.
  • Advantageous features of the platform in accordance with one or more embodiments of the invention can include the ability to support a predominantly roaming Wi-Fi environment through an architecture that offers: (1) hardware-agnostic hotspot support, where no additional hardware or software has to be deployed in Wi-Fi networks (enabling wholesale operators to integrate heterogeneous roaming partner networks into their existing footprint); (2) backhaul-agnostic hotspot support, where no dedicated backhaul needs to be provided at Wi-Fi locations (enabling wholesale operators to quickly and cost-effectively aggregate a Wi-Fi service without the costs and delays involved with provisioning and operating dedicated networks); (3) an easy-to-use UI for managing roaming partnerships such as capturing and maintaining RADIUS information that scales across thousands of partners; (4) an easy-to-use UI for managing location information, such as capturing AP, NAS
  • FIGURE 11 shows a wholesale service provider hosting a Subscriber Gateway for a retail service provider in accordance with one or more embodiments of the invention.
  • customers of the retail service provider get access to a client (branded appropriately) and the wholesale operator manages the Wi-Fi service for the retail service provider, in addition to aggregating and managing the wholesale service via the Partner Gateway.
  • the wholesale solution can leverage the service delivery infrastructure to build a framework for aggregation and delivery of content across different roaming partners.
  • the Partner Gateway can enable wholesale operators to aggregate content among content providers and deliver it to different partners depending on business agreements.
  • the applications can include location and presence services, messaging applications, and partner-specific applications.

Abstract

A method and apparatus are provided for managing usage of a plurality of local area networks by a plurality of subscribers. Each subscriber is associated with one of a plurality of retail service providers. The subscribers each have a terminal for accessing one or more of the local area networks. For each attempt by one of the plurality of subscribers to access one of the plurality of local area networks, the method includes the steps of: (a) receiving at a gateway at a wholesale service provider network a request from the one of the plurality of local area networks for authenticating the one of the plurality of subscribers. The request contains subscriber credentials for the one of the plurality of subscribers; (b) forwarding the subscriber credentials to a retail service provider with which the one of the plurality of subscribers is associated; (c) receiving from the retail service provider authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (d) authorizing the one of the plurality of local area networks to grant access to the one of the plurality of subscribers when the one of the plurality of subscribers is authenticated; (e) receiving session information from the one of the plurality of local area networks on usage of the one of a plurality of local area networks by the one of the plurality of subscribers; and (f) transmitting the information received on local area network usage to the retail service provider for use in billing the one of the plurality of subscribers.

Description

WI-FI SERVICE DELIVERY PLATFORM FOR WHOLESALE SERVICE PROVIDERS Related Application This application is based on and claims priority from Provisional Application Serial No. 60/542,358 filed on February 6, 2004, and Utility Application Serial No. 10/871,412, both entitled WI-FI SERVICE DELIVERY PLATFORM FOR WHOLESALE SERVICE
PROVIDERS, and which are incoφorated by reference herein in their entirety. Background of the Invention Field of the Invention The present invention relates generally to data networks and, more particularly, to a delivery platform for providing public wireless LAN (i.e., "Wi-Fi") service. Description of Related Art Wireless data technologies are used to provide Internet and other network access to mobile client devices such as, e.g., laptops and personal digital assistants (PDAs). For example, enteφrises and universities are now widely deploying wireless local area networks (LANs) based on the IEEE 802.11 standard. Users with client devices such as laptops and PDAs use an 802.11 network interface card that allows them wireless access to the Internet. In addition to replacing traditional Ethernet-based local area networks, these wireless LANs are now also being deployed in novel settings. Of special interest is the increasing deployment of these 802.11 based networks in public spaces and hot spots such as, e.g., aiφorts, convention centers, hotels, and even local coffee shops. These hotspots can provide Wi-Fi service at fast speeds. Brief Summary of the Invention In accordance with one or more embodiments of the invention, a method is provided for managing usage of a plurality of local area networks by a plurality of subscribers. Each subscriber is associated with one of a plurality of retail service providers. The subscribers each have a terminal for accessing one or more of the local area networks. For each attempt by one of the plurality of subscribers to access one of the plurality of local area networks, the method includes the steps of: (a) receiving at a gateway at a wholesale service provider network a request from the one of the plurality of local area networks for authenticating the one of the plurality of subscribers. The request contains subscriber credentials for the one of the plurality of subscribers; (b) forwarding the subscriber credentials to a retail service provider with which the one of the plurality of subscribers is associated; (c) receiving from the retail service provider authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (d) authorizing the one of the plurality of local area networks to grant access to the one of the plurality of subscribers when the one of the plurality of subscribers is authenticated; (e) receiving session information from the one of the plurality of local area networks on usage of the one of a plurality of local area networks by the one of the plurality of subscribers; and (f) transmitting the information received on local area network usage to the retail service provider for use in billing the one of the plurality of subscribers. In accordance with one or more embodiments of the invention, a gateway is provided for deployment at a wholesale service provider network for managing usage of a plurality of local area networks by a plurality of subscribers. Each subscriber is associated with one of a plurality of retail service providers. The subscribers each have a terminal for accessing one or more of the local area networks. The gateway includes: a first interface module for communicating with the plurality of local area networks; and a second interface module for communicating with the plurality of retail service providers. The gateway also includes a manager for receiving through the first interface module requests from the plurality of local area networks for authenticating subscribers desiring access to the plurality of local area networks. The requests contain subscriber credentials for the subscribers. The manager transmits through the second interface module the subscriber credentials to respective retail service providers with which the subscribers are associated. The manager receives from the retail service providers through the second interface module authorization to grant subscribers access to respective local area networks when the subscribers are authenticated based on subscriber credentials and information relating to the subscribers previously stored in a subscriber database. The manager authorizes the local area networks to grant access to authenticated subscribers through the first interface module. The manager also receives session information from the plurality of local area networks on usage of the local area networks by the subscribers. The manager transmits the information received on local area network usage to the retail service providers for use in billing the plurality of subscribers. In accordance with one or more embodiments of the invention, a method is provided for managing usage of a plurality of local area networks by a plurality of subscribers. Each subscriber is associated with one of a plurality of retail service providers. The subscribers each have a terminal for accessing one or more of the local area networks. For each attempt by one of the plurality of subscribers to access one of the plurality of local area networks, the method comprises the steps of: (a) receiving at a retail service provider associated with the one of the plurality of subscribers a request from the one of the plurality of local area networks for authenticating the one of the plurality of subscribers. The request is received via a gateway at a wholesale service provider network. The request contains subscriber credentials for the one of the plurality of subscribers; (b) authenticating the one of the plurality of subscribers based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (c) transmitting to the gateway authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated. The gateway transmits to the one of the plurality of local area networks authorization to grant access to the one of the plurality of subscribers; and (d) receiving from the one of the plurality of local area networks via the gateway information on local area network usage by the one of the plurality of subscribers for use in billing the one of the plurality of subscribers. These and other features will become readily apparent from the following detailed description wherein embodiments of the invention are shown and described by way of illustration. As will be realized, the invention is capable of other and different embodiments and its several details may be capable of modifications in various respects, all without departing from the invention. Accordingly, the drawings and description are to be regarded as illustrative in nature and not in a restrictive or limiting sense with the scope of the application being indicated in the claims. Brief Description of the Drawings FIGURE 1 is a simplified diagram of a Wi-Fi service delivery platform for wholesale service providers in accordance with one or more embodiments of the invention; FIGURE 2 is a simplified diagram of a Wi-Fi service delivery platform for retail service providers in accordance with one or more embodiments of the invention; FIGURE 3 is a simplified diagram of a Partner Gateway deployment in accordance with one or more embodiments of the invention; FIGURE 4 is a simplified diagram of a Partner Gateway cluster in accordance with one or more embodiments of the invention; FIGURE 5 is a simplified diagram of components of a Partner Gateway in accordance with one or more embodiments of the invention; FIGURE 6 is a simplified diagram of the system architecture of a Partner Gateway in accordance with one or more embodiments of the invention; FIGURE 7 is a simplified diagram of cluster details of a Partner Gateway in accordance with one or more embodiments of the invention; FIGURE 8 is a simplified diagram of multi-site Partner Gateway clusters in accordance with one or more embodiments of the invention; FIGURE 9 is a simplified diagram of the software architecture of a Partner Gateway in accordance with one or more embodiments of the invention; FIGURE 10 is a simplified diagram of an exemplary operation sequence in accordance with one or more embodiments of the invention; and FIGURE 1 1 is a simplified diagram of a hosted offering of a wholesale service provider in accordance with one or more embodiments of the invention. Detailed Description of Preferred Embodiments The present application relates to a Wi-Fi Service Delivery Platform having components that can function independently or can work together to deliver the broad set of Wi-Fi capabilities. The platform accelerates the path to profitability for public wireless LAN (Wi-Fi) service providers by enabling both retail and wholesale service providers to profitably support roaming relationships - or even become "virtual providers" of public Wi-Fi services - without sacrificing security, control or advanced capabilities. The Wi-Fi Service Delivery Platform has components that serve the needs of both retail service providers and wholesale operators or aggregators in the public Wi-Fi services space. Wholesale Solution Wholesale operators, including aggregators, are challenged to maximize the value of their network assets through inbound roaming. Doing so requires balancing one's own needs with the needs of retail service provider 'customers' and local venue partners. From the wholesale operator's perspective, one core need is to support inbound roaming in a manner that is manageable, scalable, highly reliable and facilitates settlement with a range of partners. In addition, to maximize the value of the hotspot venue and support local constituencies, the wholesale operator needs to enable access to local venue applications and services. As shown in FIGURE 1, a Wi-Fi Service Delivery Platform in accordance with one or more embodiments of the invention for wholesale operators includes a Partner Gateway, which is a centrally deployed and managed network device that facilitates partnerships and enables inbound roaming on Wi-Fi networks owned or controlled by a Wi-Fi aggregator. The Partner Gateway enables a Wi-Fi wholesale network operator to configure and support inbound roaming relationships easily and securely with a broad range of retail service provider partners. The system manages the real-time delivery of AAA or GSM MAP information to these partners from a central platform, supports delivery of local venue services and feeds roaming usage information to a wholesale billing/settlement platform or external clearinghouse. The Partner Gateway is a standards-based platform which does not require that the retail partners have any specific infrastructure other than a RADIUS server or terminating HLR. Retail Solution Retail service providers - providers who own direct relationships with end users - are constantly challenged to excel at meeting the needs of their end users. In the public Wi-Fi service market, these needs can include, e.g., (1) broad service coverage across key venues, (2) a simple, reliable and high-quality end user experience, (3) enteφrise-quality security in a public environment, (4) access to a suite of local and global applications, (5) enteφrise-level management of end user usage and costs, and (6) affordable pricing plans for enteφrise and individual users. These needs can run counter to one another. For example, broad coverage implies many roaming partners - but this can have a negative impact on the simplicity of the end user experience and security. Reliable, high-quality service is facilitated by ownership of the backhaul - but this can ruin the economics of the business and make affordable pricing impossible. Access to applications are enabled when the retail provider owns the applications and the customer is not running a VPN - but a single provider can never control all of the potential applications and enteφrise customers will need a VPN to access coφorate networks and applications. As shown in FIGURE 2, the Wi-Fi Service Delivery Platform for retail service providers can include two components: a Subscriber Gateway and a Service Manager. The Subscriber Gateway is a centrally deployed and managed network device that controls multiple aspects of Wi-Fi services for a branded retail service provider. The Subscriber Gateway enables retail service providers to work with a broad set of roaming partners. It facilitates these partnerships through automated configuration and management capabilities and extends control by delivering a unique set of audit and visibility capabilities. A rich set of real-time presence, location and reachability capability works in conjunction with the Service Manager software to enable the branded retail service provider to maintain unprecedented control over their end subscribers. This same capability provides significant visibility into critical usage and performance data and ensures the consistent delivery of advanced services. The Subscriber Gateway does not require the deployment of any proprietary hardware or software on a partner network, nor does it require expensive backhaul changes to the network like many alternative solutions. The Service Manager is client software that runs on an end user's Wi-Fi enabled laptop or PDA or other portable client device. Issued by the retail service provider who owns the relationship with the end user, the Service Manager software provides a carrier-branded user interface and secure connection management capability across multiple networks (e.g. Wi-Fi, GPRS, EDGE, lxRTT, EVDO, UMTS). When deployed in conjunction with the Subscriber Gateway (see above), the capabilities are extended to offer unique control, visibility, service integration and mobility features. The Service Manager is designed to work with a broad set of networks and standards - enabling roaming onto partner networks without requiring these networks to conform to a single standard authentication mechanism. With respect to the wholesale solution, the Service Delivery Platform in accordance with one or more embodiments can include several advantageous features and capabilities. For instance, the platform can provide (1) carrier- grade reliability via a clustered and load balanced architecture, (2) enhanced network management and alerting support via SNMP events, (3) RAID support, and (4) configurable backup and restore support. Capabilities of a Partner Gateway in accordance with one or more embodiments for a wholesale service provider can include (1) an advanced roaming partner policy management capability, allowing management of subsets of Wi-Fi footprint, (2) wizards to simplify configuration of roaming relationships, and (3) an ODBC interface to export records to external systems for easy reporting and data manipulation by operators. More particularly, wholesale solutions in accordance with one or more embodiments of the invention can include one or more of the following advantageous features: 1. The solution can provide brokering of Wi-Fi networks without requiring hardware to be deployed at partner hotspot networks. This can be accomplished by the Partner Gateway being able to connect to standards based input from hotspots. 2. The solution can provide brokering without requiring dedicated backhaul connections to the wholesale provider network. This can be accomplished because the Partner Gateway is a control path product. 3. The solution can provide the ability to manage Wi-Fi roaming partnerships including technical and business agreements. This can be accomplished via an easy to manage user interface that supports a number of complex parameters. 4. The solution can enable authentication with SS7 networks. This can be accomplished by the Partner Gateway functioning as a VLR for GSM/GPRS networks. 5. The solution can support wholesale operations with different types of retail providers, including CDMA, GSM/GPRS, Wireline, Cable, etc. This can be accomplished by the Partner Gateway providing a generic modular architecture. 6. The solution can provide a turnkey platform that integrates into an existing wholesale operator's network architecture. This can be accomplished by the Partner Gateway providing standard interfaces with a number of core OSS/BSS systems. 7. The solution can support hierarchical roaming agreements. This can provide the wholesale operator the ability to integrate with other wholesale operators. The Partner Gateway can have the ability to manage hierarchical domains for proxy. 8. The solution can support footprint policy management. This capability can provide the ability to specify and enforce policies on the subset of Wi-Fi networks that are made available to different retail provider partners.
WHOLESALE SOLUTION: PARTNER GATEWAY
Design Challenges The wholesale solution in accordance with one or more embodiments can address several key challenges in aggregating and wholesaling public Wi-Fi services. These can include: (1) aggregation and management of heterogeneous Wi-Fi footprint operators, (2) brokering and managing technical and business agreements between Wi-Fi footprint operators and retail service providers, and (3) turnkey deployment, while leveraging existing infrastructure for billing and settlement. Partner Gateway: Capability Details A Partner Gateway in accordance with one or more embodiments of the invention can offers functionality around the following areas: (1) Partner and Location Management: Partner and location management address management of logistics associated with the Wi-Fi service, including roaming partner setup, Wi-Fi footprint and location management. (2) IP and SS7 authentication Brokering: Manages brokering of authentication information between Wi-Fi network operators and retail service providers for both IP and SS7 based authentication mechanisms. (3) Usage Reporting and Settlement: Enables generation of usage information for settlement and reporting, and enables delivery of usage information to retail partners for end- user billing. Each of these capabilities is described in further detail below. Partner and Location Management Partner Management: This capability allows wholesale operators to manage logistics associated with the Wi-
Fi service, including Wi-Fi network partner configuration, retail service provider partner configuration, and Wi-Fi footprint management through HTML-based GUI or through automated scripts in the CLI. Partner Policy Management: Wholesale operators can have the ability to specify and enforce policies on footprints available to different partners. For instance, some retail partners may be allowed to access a subset of the hotspot partners that are part of the wholesale operator's total footprint. The Partner Gateway partner policy management capability allows the configuration of such policies. Location Management: This capability enables wholesale operators to capture and manage the database of home and partner network locations, including automated import and export of partner locations in customizable or other formats. Location directory information may be delivered to retail partners for distribution to end-users customers. IP and SS7 authentication brokering: The Partner Gateway can allow wholesale operators to manage brokering of authentication information between Wi-Fi network operators and retail service providers. IP Authentication: This functionality can support secure proxy of RADIUS information (MD5, PEAP, EAP SIM) from Wi-Fi operators to appropriate realms in retail service provider networks. SS7 Authentication: This functionality can support SS7 authentication over GSM MAP for GSM partner networks - the Partner Gateway functions as a VLR from the point of view of the HLR in the retail service provider network. Usage Reporting and Settlement: This functionality enables the generation of usage information for settlement and reporting, and enables delivery of usage information to retail partners for end-user billing: Wi-Fi Accounting Generation: The Partner Gateway can collect usage information for each session, augments it with Wi-Fi specific information and captures it in a Data Record (TDR). Usage Delivery: The collected usage information is delivered to billing and settlement systems. The output format may be TAP3 (vlO) or any other customizable format. Reporting: Real-time reporting of usage, based on Wi-Fi partners, retail partners, locations, and time; reports can be viewed graphically as well as delivered via FTP to other systems. An ODBC interface is provided in the Partner Gateway, whereby usage records may be accessed from a third party system for further analysis and reporting. Settlement: The Partner Gateway can support generation of settlement records via TAP3 or customized formats for settlement between Wi-Fi and retail partners. Partner Gateway: Deployment FIGURE 3 shows a typical deployment architecture for the Partner Gateway in accordance with one or more embodiments of the invention in a wholesale operator's network and demonstrates how a wholesale operator may be able to offer wholesale Wi-Fi services on its aggregated Wi-Fi footprint. As shown in the figure, the Partner Gateway is deployed in the wholesale operator's network operations center.
Wi-Fi operator network interfaces: The Partner Gateway interfaces with the Wi-Fi network over an IP interface. Note that the Partner Gateway is a control path product and does not require dedicated backhaul from the Wi-Fi network to the Partner Gateway. It also does not require the deployment of any additional equipment at the hotspot. The Wi-Fi networks forward authentication information to the Partner Gateway.
Retail service provider network interfaces: The Partner Gateway forwards retail subscriber authentication requests to the retail service provider core network. This can be either a SS7 request to the retail service provider's HLR or an IP RADIUS request. For instance, if the wholesale operator wholesales its service to a GSM provider, the Partner Gateway may allow SS7 based authentication into the GSM network. Similarly, the Partner Gateway also provides RADIUS proxy interface to other partner networks, including CDMA operators, wireline operators, or GSM operators that don't want to use SS7 authentication. The Partner Gateway also generates settlement and reporting data for the wholesale Wi-Fi service. Partner Gateway: Underlying Platform The Partner Gateway in accordance with one or more embodiments is a carrier-class gateway preferably running an embedded, hardened, real-time operating system based on the Linux Debian kernel. In addition, the Partner Gateway can be deployed in a clustered architecture that provides reliability as well as load balancing. Clustering is generally driven by two requirements: (1) high availability service, providing 99.999% reliability, without loss of usage data for billing puφoses or loss of service experience by end users; and (2) performance improvement through scaling. One example of the overall clustered solution is described in FIGURE 4. As shown, the Partner Gateway cluster is deployed in the service provider network. The cluster is addressed by a single virtual address. The IP address is owned by the node that is the cluster 'master' (typically the node with the lower ID). RADIUS clients/proxies communicate with the virtual IP address. This request is received by the cluster master, which assigns the transaction to the appropriate node in the cluster. On the back end, each Partner Gateway communicates with the subscriber database or HLR for authentication. Mediation systems retrieve data from one of the nodes in the cluster, since usage information is replicated on both nodes. The nodes within the cluster exchange heartbeat messages for checking the health of the cluster. This solution in accordance with one or more embodiments of the invention meets the two requirements required of a clustered solution. First, even if one node were to go down, there is no loss of data or service interruption. Preferably, all usage data is replicated on each cluster; as a result there is no loss of data for billing puφoses. Further, preferably there is no bearer path traffic through the Partner Gateway, so there is no loss of service from the user's perspective. The Partner Gateway device can be configured and managed through any of several mechanisms. First, a robust, secure, web-based management interface enables full configuration and device management from any standard web browser. Second, a command line interface (CLI) provides full configuration and management capabilities and allows for easy scripting by a carrier of common command sequences. Finally, a SNMPv3 interface allows the Partner Gateway to be configured remotely and managed through an external network management system. A variety of user privilege levels and security settings can be used to prevent unauthorized management system access and allow graduated user access for various functional operations. Partner Gateway: System Architecture The software modules in the Partner Gateway platform in accordance with one or more embodiments of the invention are shown by way of example in FIGURE 5. The modules include: 1. Partner: This module manages the various aspects of partner management, as described earlier. 2. RADIUS: This module implements a RADIUS interface to connect with the RADIUS clients deployed in Wi-Fi hotspots. It can support the standard RFCs, including 2865, 2866, 2869. The RADIUS module proxies messages to the retail service provider network. 3. Authentication: This module supports the core authentication modules, including all the 802. lx protocols such as MD5, PEAP, and EAP SIM. 4. SS7: This module implements the SS7 interface to HLRs using GSM MAP (29.002). It can support both ANSI and ITU versions. 5. Session Manager: This module implements the real-time session management capability in the system. Preferably, it maintains real-time state for all the active sessions in the system and writes usage data to the TDR collection module. 6. TDR Collection: This module stores session usage data and provides management access including report generation. 7. Mediation: This module provides the external interface with mediation, rating and settlement platforms via FTP. Data is formatted into GCDR or TAP3 formats and can be delivered to the downstream systems. Additional support for IPDR is planned in an upcoming release. 8. System Management: This forms the underlying management layer within the platform. It is preferably based on SNMP and is used to control the underlying management of the platform. Both the Web interface and Command Line Interface (CLI) utilize the management layer for consistency and completeness. In addition to these modules, there are other storage subsystems that store location information within the Partner Gateway. The platform itself can be implemented on a Linux kernel and has multiple Ethernet and
Tl/El network interfaces. The Tl/El interfaces are optional and required only if GSM MAP SS7 authentication is enabled. The underlying software architecture is based on a fully- managed, multi-process paradigm. Preferably, each core module is implemented as a separate process and processes communicate via an efficient, reliable socket-based inter-process communication mechanism. The modules are designed for resiliency with the help of watchdog timers. Multi-node reliability is enabled via a clustered approach for high availability. FIGURE 6 illustrates the system architecture of a Partner Gateway in accordance with one or more embodiments of the invention. RADIUS provides external connectivity on the IP side. The RADIUS module interfaces with the RADIUS client or proxy in the hotspot network to receive RADIUS authentication and accounting messages. The RADIUS messages are then proxied to the appropriate service provider network, depending on the proxy relationships. The Session Manager is the central module, which interfaces with the other system modules. When it receives RADIUS requests from the RADIUS module, it creates a new session. As RADIUS sessions are proxied through the system, it tracks the session information. In the case of SS7 authentications, the authentication module converts EAP SIM messages and passes them to the HLR. As the session progresses, the Session Manager collects usage information. At the end of the session, the Session Manager generates a session TDR (Data Record). The TDR is sent to the TDR collection module at the end of the session. The Mediation module formats the TDR to a format acceptable by the external mediation/settlement systems and delivers the data to mediation/settlement systems for further processing by the service provider infrastructure. As shown in the figure, the underlying system is managed through an SNMP infrastructure, which can be accessed via the HTTP/S interface as well as the command line interface. CLI is accessible locally or remotely via Telnet and SSH. Operations that require file transfers are supported with an embedded FTP client and server. Extemal database access to accounting records and reports is supported via the ODBC interface. The partner and location management functionality is accessed through either of these interfaces and the data is stored internally within the Partner Gateway. Details of the clustered solution are described through FIGURE 7. As shown in the figure, the session manager replicates information across the cluster. As a result, TDRs and
CTDRs are processed by both systems. This ensures that usage is available in both nodes in the event of a failure. Wl en a new node is added into the cluster, it first synchronizes the database before becoming active within the cluster. This ensures that the bulk of synchronization is done before it enters the cluster for better performance. Multi-site clustering for increased reliability and disaster recovery can also be supported. An overview of a deployment is shown in FIGURE 8. As shown in the figure, multiple Partner Gateway clusters can be deployed in different sites. Each cluster has its own IP address. The RADIUS clients or proxies in the Wi-Fi network use their primary and secondary RADIUS server configurations to point to the two clusters. The multi-site clusters can be deployed in a number of ways, including the following: (1) Load distribution mode: In this case, some RADIUS clients point to one cluster as the primary and use the second cluster for a backup, while other RADIUS clients point to the other cluster as a primary. This deployment provides geographic load sharing. (2) Back up mode: An alternative is to use one cluster as the primary cluster for all traffic and the second cluster as the backup. Note that this solution does not replicate sessions across clusters; it replicates usage data for completed sessions across the clusters. This guarantees service operation but there might be some loss of session information while the backup cluster kicks in. Frequent backup of data allows most billing information to be captured. Partner Gateway: Software Architecture The different modules within the Partner Gateway are called "subsystems." Each subsystem is derived from the base subsystem class that provides control, management, and integration services. The following summarizes the services provided by the base class. 1. Execution Control (a) Startup -a master process starts and restarts each subsystem in the event of a crash, but prevents rapid restarting. (b) Control loop - main process loop for supporting all common subsystem services with hooks for subsystem specific functions. (c) Resource Limits - Memory, CPU, and Stack limits prevent single process from starving the rest of the system. (d) Signal Handlers - Handlers for all Unix signals prevent uncaught signals from terminating subsystems. (e) Shutdown - support for orderly shutdown including notification to management and other subsystems. 2. Event Logging (a) Registration of subsystem specific events with the central Event Log. (b) Event filtering through management (by level, subsystem, or event ID). (c) Real time event logging to the central Event Log subsystem. 3. Timers (a) Support for asynchronous, one-shot or repeatable timers, (b) Granularity down to microseconds. 4. InterProcess Communications (IPC) (a) Support for message and C++ object passing with other subsystems. (b) Uses reliable Unix Domain Sockets. (c) Non blocking, queued sends prevent unwanted context switching. (d) Detection when remote subsystem goes up or down. 5. SNMP Subagent (a) Maintains an IPC connection to the central SNMP Master Agent (MA). (b) Supports a common Subsystem MIB for monitoring the process state, memory usage, IPC status, and the like. (c) Supports registration of subsystem specific MIBs with the Master Agent. 6. Cluster Membership (a) Subsystems can declare themselves as "cluster-aware" in the constructor. (b) A cluster-aware subsystem receives notifications when other nodes in the cluster come up or go down. (c) Cluster- aware subsystems require external IPC connections to pass messages to other nodes in the cluster (the subsystem base class supports internal and external reliable IPC support). FIGURE 9 illustrates an example of how two gateway subsystems can be integrated. Both Subsystems are derived from the base Subsystem that provides all the services listed above. Both have an event client that connects to the central Event Log and an SNMP
Subagent that connects to the central SNMP Master Agent for MIB support. In this example, the Authentication subsystem (Auth) provides an API to the Radius subsystem. The API methods send and receive non-blocking PC messages to/from the Auth subsystem. Data Record (TDR): As mentioned earlier, the Partner Gateway stores session information in an internal data format called the Data Record. The TDR collects usage generated by RADIUS, and augments it with Wi-Fi specific information such as location and service plans. Table 1 below shows the attributes of the Data Record. These augment information from the RADIUS record with location and service plan information.
Figure imgf000017_0001
Figure imgf000018_0001
Partner Gateway: Operation The operation of the system is described next. The operation can be divided into three steps: (a) system setup, (b) service setup, (c) run-time operation. System Setup: The system setup process includes starting and configuring the Partner Gateway. Parameters that are typically configured include the network settings (IP address, DNS, DHCP, etc.), SS7 settings (link settings, point codes, etc.) as well as security settings (certificate management). These configuration options are available from the different tabs on the Partner Gateway interface. Service Setup: The service setup process involves configuring the system to set up Wi-Fi partner information as well as to set up connections to the retail service providers. (Note that the Partner Gateway does not require or assume the presence of a Subscriber Gateway to deliver its whole set of services.)
Wi-Fi Operator Partner Configuration: This step allows the wholesale service provider to configure Wi-Fi network connection settings for all its footprint partners. This includes specifying the RADIUS clients, associated shared secrets, and the like so that the hotspot partner can send RADIUS information to the Partner Gateway. As part of partnership setup, the partner also needs to configure its RADIUS server to proxy authentication and accounting requests to the Partner Gateway. Retail Service Provider Configuration: This step allows the wholesale service provider to configure the proxy settings for the retail service provider partner. In this case, the retail service provider actually provides service to their end customer, while getting footprint from the wholesale operator. The configuration involves setting the right proxy settings so that the Partner Gateway can forward requests authentication requests to the retail provider's network. (In case the retail service provider partner is using SS7 authentication, this step would also involve configuration of the SS7 settings such as point codes.) As a result of configuring steps 1 and 2 above, if, e.g., ABC Wireless is the retail service provider, Wi-Fi Operator is the hotspot operator, and Aggregator is the wholesale operator, then when user@abcwireless.aggregator.com comes to the hotspot: The Wi-Fi operator RADIUS proxy forwards abcwireless.aggregator.com requests to Aggregator's network (as part of configuration step 1). The Partner Gateway then proxies user@abcwireless.com to the RADIUS servers in ABC Wireless' infrastructure.
Location Configuration: In this step, the wholesale service provider configures Wi-Fi footprint information. This can be done by specifying the location information associated with each partner. The location information includes a list of AP's, NAS, etc. that are part of the footprint as well as address, phone number, and the like. This information can be used to generate a location directory that is communicated to the retail service provider. The retail service provider, in turn, sends the location directory to their customers. Note that as new partners are added or as new locations are added, the operator can configure the system to add the new information without affecting the run-time operation of the system. The Partner Gateway automatically generates the updated location directory that can be used for distribution to the client.
Mediation Configuration: The mediation interface on the Partner Gateway can deliver formatted mediation records to the downstream mediation or settlement systems in the aggregator network. Typical configurations on the mediation system include setting the location of the mediation system, configuring the frequency of mediation runs, etc.
Run-time Operation The wholesale operator signs up footprint partnerships and makes the footprint available to their retail service provider partners. The retail service provider's customers come to the aggregated hotspots. No requirements are made on the retail provider network or on the client running on the retail subscriber's terminal. The following sequence of events describes exemplary operation of the Partner Gateway when a retail service provider's customer (e.g. user@abcwireless) enters a hotspot operated by the wholesale operator's Wi-Fi partner (see
FIGURE 10 for a specific call flow). 1. User comes to a hotspot and provides authentication credentials. For instance, a customer of ABC Wireless sends his login information as user@abcwireless.aggregator.com. 2. The authentication information is received by the hotspot RADIUS client and forwarded (via possible intermediate proxy servers) to the Partner Gateway. As part of the Wi- Fi partnership setup process, the RADIUS proxy in the hotspot network is configured to forward realm-based requests to the appropriate Partner Gateway in the service provider network. 3. The RADIUS module in the Partner Gateway receives the authentication request and proxies it to the appropriate retail service provider network, in this case, to ABC Wireless. Recall that this proxy configuration was set up as part of the retail provider configuration process. 4. Alternatively, if the user were using a SIM for authentication, the Partner Gateway receives EAP SIM messages. The Partner Gateway can process this in one of two ways. First, the Partner Gateway can proxy EAP SIM to the retail service provider's RADIUS server. Second, the Partner Gateway can send GSM MAP messages to the retail service provider's HLR. 5. The retail provider authenticates the user and sends the response back to the Partner Gateway, which then proxies it to the hotspot operator. 6. The Partner Gateway creates and maintains a session for this subscriber. 7. As the session proceeds, the hotspot RADIUS server/proxy sends RADIUS accounting messages to the Partner Gateway. 8. The accounting information is sent to the Session Manager in the Partner Gateway as well as proxied to the retail provider's network. 9. The Session Manager updates the session status with usage information. 10. When the session terminates, RADIUS receives a session stop message. The Partner Gateway also proxies this information to the retail provider network. 11. The Session Manager updates the session information and generates a TDR (Data Record). This record is sent to the TDR collection module. 12. The usage information for all sessions is collected in an internal SQL database. 13. Usage reports based on time, location, partner, etc. may be run on the internal SQL database via the Partner Gateway user interfaces. 14. The Mediation module runs at a programmable frequency and converts the TDRs into the appropriate format records (e.g. GPRS CDRs or TAP3 records) and delivers them to the mediation or settlement system for use by the wholesale operator.
In addition to the above real-time session sequence, an administrator can use the Web or CLI interface on the Partner Gateway to manage the gateway at any time. The service delivery platform thereby enables wholesale service providers to aggregate and wholesale Wi-Fi services. Advantageous features of the platform in accordance with one or more embodiments of the invention can include the ability to support a predominantly roaming Wi-Fi environment through an architecture that offers: (1) hardware-agnostic hotspot support, where no additional hardware or software has to be deployed in Wi-Fi networks (enabling wholesale operators to integrate heterogeneous roaming partner networks into their existing footprint); (2) backhaul-agnostic hotspot support, where no dedicated backhaul needs to be provided at Wi-Fi locations (enabling wholesale operators to quickly and cost-effectively aggregate a Wi-Fi service without the costs and delays involved with provisioning and operating dedicated networks); (3) an easy-to-use UI for managing roaming partnerships such as capturing and maintaining RADIUS information that scales across thousands of partners; (4) an easy-to-use UI for managing location information, such as capturing AP, NAS locations, enabling generation of an up-to-date location database; (5) supports flexible authentication mechanisms enabling retail service providers to efficiently work with aggregators; and (6) supports a highly manageable solution that offers visibility and manageability of a secure carrier-class platform via SNMP, HTTPS, and CLI. Some wholesale operators may also be interested in providing "hosted" services for their retail service provider partners. In this case, the wholesale operator can also host the Subscriber Gateway, thereby managing the Wi-Fi service for retail operators. FIGURE 11 shows a wholesale service provider hosting a Subscriber Gateway for a retail service provider in accordance with one or more embodiments of the invention. In this case, customers of the retail service provider get access to a client (branded appropriately) and the wholesale operator manages the Wi-Fi service for the retail service provider, in addition to aggregating and managing the wholesale service via the Partner Gateway. In accordance with one or more further embodiments of the invention, the wholesale solution can leverage the service delivery infrastructure to build a framework for aggregation and delivery of content across different roaming partners. The Partner Gateway can enable wholesale operators to aggregate content among content providers and deliver it to different partners depending on business agreements. The applications can include location and presence services, messaging applications, and partner-specific applications. Having described preferred embodiments of the present invention, it should be apparent that modifications can be made without departing from the spirit and scope of the invention.

Claims

Claims 1. A method for managing usage of a plurality of local area networks by a plurality of subscribers, each subscriber associated with one of a plurality of retail service providers, the subscribers each having a terminal for accessing one or more of said local area networks, for each attempt by one of said plurality of subscribers to access one of the plurality of local area networks, the method comprising the steps of: (a) receiving at a gateway at a wholesale service provider network a request from said one of the plurality of local area networks for authenticating one of the plurality of subscribers, the request containing subscriber credentials for the one of the plurality of subscribers; (b) forwarding the subscriber credentials to a retail service provider with which the one of the plurality of subscribers is associated; (c) receiving from the retail service provider authorization to grant access to the one of the plurality of local area networks when the one of the plurality of subscribers is authenticated based on the subscriber credentials and information relating to the one of the plurality of subscribers previously stored in a subscriber database; (d) authorizing the one of the plurality of local area networks to grant access to the one of the plurality of subscribers when the one of the plurality of subscribers is authenticated; (e) receiving session information from the one of the plurality of local area networks on usage of the one of a plurality of local area networks by the one of the plurality of subscribers; and (f) transmitting the information received on local area network usage to the retail service provider for use in billing the one of the plurality of subscribers.
2. The method of Claim 1 wherein the local area networks are wireless local area networks.
3. The method of Claim 1 wherein the gateway comprises a generic modular architecture, and wherein the plurality of retail service providers provide different types of retail services.
4. The method of Claim 1 wherein the information relating to the one of the plurality of subscribers comprises information obtained in connection with another service offered to the one of the plurality of subscribers by the retail service provider.
5. The method of Claim 1 wherein each of the plurality of retail service providers is associated with a subset of the plurality of local area networks such that subscribers associated with a given retail service provider can access the subset of the plurality of local area networks associated with the given retail service provider.
6. The method of Claim 1 wherein step (f) comprises, for each retail service provider, collecting said information on local area network usage for a given period of time by subscribers associated with said retail service provider, and transmitting said information to said retail service provider.
7. The method of Claim 1 further comprising configuring the gateway to include information on the plurality of local area networks.
8. The method of Claim 7 wherein the information on each local area network includes information on local area network equipment, local area network location, or an address of a RADIUS client associated with a local area network.
9. A gateway for deployment at a wholesale service provider network for managing usage of a plurality of local area networks by a plurality of subscribers, each subscriber associated with one of a plurality of retail service providers, said subscribers each having a terminal for accessing one or more of said local area networks, the gateway comprising: a first interface module for communicating with said plurality of local area networks; a second interface module for communicating with said plurality of retail service providers; and a manager for receiving through said first interface module requests from said plurality of local area networks for authenticating subscribers desiring access to said plurality of local area networks, said requests containing subscriber credentials for said subscribers, said manager transmitting through said second interface module said subscriber credentials to respective retail service providers with which said subscribers are associated, said manager receiving from said retail service providers through said second interface module authorization to grant subscribers access to respective local area networks when said subscribers are authenticated based on subscriber credentials and information relating to said subscribers previously stored in a subscriber database, said manager authorizing said local area networks to grant access to authenticated subscribers through said first interface module, said manager also receiving session information from said plurality of local area networks on usage of said local area networks by said subscribers, and said manager transmitting said information received on local area network usage to said retail service providers for use in billing said plurality of subscribers.
10. The gateway of Claim 9 wherein said local area networks are wireless local area networks.
11. The gateway of Claim 9 wherein said gateway has a generic modular architecture, and wherein said plurality of retail service providers provide different types of retail services.
12. The gateway of Claim 9 wherein said gateway includes an interface to an OSS/BSS system.
13. The gateway of Claim 9 wherein the manager generates a directory of local area networks accessible by said subscribers.
14. The gateway of Claim 9 wherein the manager collects said information on local area network usage for a given period of time by subscribers associated with respective retail service providers, and wherein the manager transmits said information to said respective retail service providers.
15. The gateway of Claim 9 wherein the manager is configured to include information on said plurality of local area networks.
16. A method for managing usage of a plurality of local area networks by a plurality of subscribers, each subscriber associated with one of a plurality of retail service providers, said subscribers each having a terminal for accessing one or more of said local area networks, for each attempt by one of said plurality of subscribers to access one of said plurality of local area networks, the method comprising the steps of: (a) receiving at a retail service provider associated with said one of said plurality of subscribers a request from said one of said plurality of local area networks for authenticating said one of said plurality of subscribers, said request received via a gateway at a wholesale service provider network, said request containing subscriber credentials for said one of said plurality of subscribers; (b) authenticating said one of said plurality of subscribers based on said subscriber credentials and information relating to said one of said plurality of subscribers previously stored in a subscriber database; (c) transmitting to said gateway authorization to grant access to said one of said plurality of local area networks when said one of said plurality of subscribers is authenticated, said gateway transmitting to said one of said plurality of local area networks authorization to grant access to said one of said plurality of subscribers; and (d) receiving from said one of said plurality of local area networks via said gateway information on local area network usage by said one of said plurality of subscribers for use in billing said one of said plurality of subscribers.
17. The method of Claim 16 wherein said local area networks are wireless local area networks.
PCT/US2005/003638 2004-02-06 2005-02-04 Wi-fi service delivery platform for wholesale service providers WO2005076930A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US54235804P 2004-02-06 2004-02-06
US60/542,358 2004-02-06
US10/871,412 2004-06-18
US10/871,412 US20050175019A1 (en) 2004-02-06 2004-06-18 Wi-Fi service delivery platform for wholesale service providers

Publications (2)

Publication Number Publication Date
WO2005076930A2 true WO2005076930A2 (en) 2005-08-25
WO2005076930A3 WO2005076930A3 (en) 2005-11-03

Family

ID=34830535

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/003638 WO2005076930A2 (en) 2004-02-06 2005-02-04 Wi-fi service delivery platform for wholesale service providers

Country Status (2)

Country Link
US (1) US20050175019A1 (en)
WO (1) WO2005076930A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10623953B1 (en) 2017-02-07 2020-04-14 Amdocs Development Limited System, method, and computer program for performing WiFi device authentication utilizing a calling line identification (CLI) as a passcode

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060077957A1 (en) * 2004-10-08 2006-04-13 Umamaheswar Reddy Call handoff between subscriber's multiple devices associated with multiple networks
US20060077956A1 (en) * 2004-10-08 2006-04-13 Saksena Vikram R Common telephony services to multiple devices associated with multiple networks
GB2419775B (en) * 2004-10-28 2009-03-25 Agilent Technologies Inc Generation of data session records for mobile data communications networks
US20060274740A1 (en) * 2005-06-03 2006-12-07 Sbc Knowledge Ventures Lp Method and apparatus for business to consumer channeling over wireless access networks
FR2895186A1 (en) * 2005-12-20 2007-06-22 France Telecom METHOD AND SYSTEM FOR UPDATING ACCESS CONDITIONS OF A TELECOMMUNICATION DEVICE TO SERVICES ISSUED BY A TELECOMMUNICATION NETWORK
CN101379853B (en) * 2006-02-22 2013-03-27 日本电气株式会社 Radio access system and radio access method
CA2976266C (en) * 2006-09-21 2019-10-29 Mark Hanson Wireless device registration, such as automatic registration of a wi-fi enabled device
WO2008154687A1 (en) * 2007-06-19 2008-12-24 Freshtel R & D Pty Ltd Method and system for foreign network usage data collection
US8812700B2 (en) * 2008-12-12 2014-08-19 At&T Intellectual Property I, L.P. Method and apparatus for providing network based services to non-registering endpoints
CN101895962A (en) * 2010-08-05 2010-11-24 华为终端有限公司 Wi-Fi (wireless fidelity) access method, access point and Wi-Fi access system
US8346672B1 (en) * 2012-04-10 2013-01-01 Accells Technologies (2009), Ltd. System and method for secure transaction process via mobile device
WO2014078365A1 (en) 2012-11-14 2014-05-22 Raytheon Company Network of networks architecture
FR3029384B1 (en) * 2014-11-27 2018-01-26 Traxens METHOD OF AFFILIATION TO A CLUSTER OF ELECTRONIC DEVICES COMMUNICATING VIA A WIRELESS NETWORK, ELECTRONIC DEVICE USING SAID METHOD AND SYSTEM THEREOF
KR102044615B1 (en) * 2014-12-12 2019-11-13 콘비다 와이어리스, 엘엘씨 Charging in the integrated small cell/wi-fi networks (iswn)
US11115810B1 (en) 2020-03-17 2021-09-07 Sprint Communications Company L.P. Bootstrap electronic subscriber identity module configuration
US10887741B1 (en) 2020-03-17 2021-01-05 Sprint Communications Company L.P. Activation communication addresses of internet of things devices
US11140543B1 (en) 2020-05-21 2021-10-05 Sprint Communications Company L.P. Embedded subscriber identity module (eSIM) profile adaptation based on context
US11477636B1 (en) * 2020-09-16 2022-10-18 Sprint Communications Company L.P. Electronic subscriber identity module (eSIM) profile provisioning
US11310654B1 (en) 2020-09-16 2022-04-19 Sprint Communications Company L.P. Electronic subscriber identity module (eSIM) profile delivery and activation system and methods

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020191575A1 (en) * 2001-06-18 2002-12-19 Broadwave, Inc. Method and apparatus for converging local area and wide area wireless data networks
US20030051041A1 (en) * 2001-08-07 2003-03-13 Tatara Systems, Inc. Method and apparatus for integrating billing and authentication functions in local area and wide area wireless data networks
US20050021781A1 (en) * 2003-06-05 2005-01-27 Singam Sunder Method and system of providing access point data associated with a network access point
US20050124288A1 (en) * 2002-03-13 2005-06-09 Yair Karmi Accessing cellular networks from non-native local networks

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ATE315309T1 (en) * 2001-03-22 2006-02-15 Nortel Networks Ltd FLEXIBLE CUSTOMIZATION OF NETWORK SERVICES
US20040066782A1 (en) * 2002-09-23 2004-04-08 Nassar Ayman Esam System, method and apparatus for sharing and optimizing packet services nodes
US7356015B2 (en) * 2003-05-02 2008-04-08 Steven Blumenthal Data handoff method between wireless local area network and wireless wide area network
US7113743B2 (en) * 2003-09-11 2006-09-26 Atc Technologies, Llc Systems and methods for inter-system sharing of satellite communications frequencies within a common footprint

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020191575A1 (en) * 2001-06-18 2002-12-19 Broadwave, Inc. Method and apparatus for converging local area and wide area wireless data networks
US20030051041A1 (en) * 2001-08-07 2003-03-13 Tatara Systems, Inc. Method and apparatus for integrating billing and authentication functions in local area and wide area wireless data networks
US20050124288A1 (en) * 2002-03-13 2005-06-09 Yair Karmi Accessing cellular networks from non-native local networks
US20050021781A1 (en) * 2003-06-05 2005-01-27 Singam Sunder Method and system of providing access point data associated with a network access point

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
[Online] December 2003, page 7, XP002991045 Retrieved from the Internet: <URL:www.alepo.com/hotspot-billing-software .shtml> *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10623953B1 (en) 2017-02-07 2020-04-14 Amdocs Development Limited System, method, and computer program for performing WiFi device authentication utilizing a calling line identification (CLI) as a passcode

Also Published As

Publication number Publication date
WO2005076930A3 (en) 2005-11-03
US20050175019A1 (en) 2005-08-11

Similar Documents

Publication Publication Date Title
WO2005076930A2 (en) Wi-fi service delivery platform for wholesale service providers
US20050177515A1 (en) Wi-Fi service delivery platform for retail service providers
US11457373B2 (en) Gateway device for machine-to-machine communication with dual cellular interfaces
US20060041931A1 (en) Service level assurance system and method for wired and wireless broadband networks
US20070147324A1 (en) System and method for improved WiFi/WiMax retail installation management
WO2019154295A1 (en) Method, device, and system for guaranteeing service level agreement of application
EP2036253B1 (en) Network service performance monitoring apparatus and methods
EP3213535B1 (en) Methods and apparatuses for service layer charging correlation with underlying networks
US20020075844A1 (en) Integrating public and private network resources for optimized broadband wireless access and method
JP2007505553A (en) Wireless networking system and method
EP2534889B1 (en) Method and apparatus for redirecting data traffic
CA2825289A1 (en) Location services gateway server
US7693742B1 (en) System, method and computer program product for a network analyzer business model
JP2006505977A (en) Method, system and terminal for exchanging presence information of wireless LAN users
Hasan et al. Building flexible, low-cost wireless access networks with Magma
KR100454687B1 (en) A method for inter-working of the aaa server and separated accounting server based on diameter
WO2013096938A1 (en) Method and apparatus for load transfer
EP2552052B1 (en) Network management method and network management system
KR101262344B1 (en) System based on diameter and session management method using the same
Hsu et al. Deploying WLAN service with OpenFlow technology
CN116471590A (en) Terminal access method, device and authentication service function network element
US20130260738A1 (en) Roaming detection and session recovery during VMM-RC
KR20150066240A (en) Middle node for synchronization of notification message delivery
WO2023016664A1 (en) Apparatus, methods, and computer programs
KR20150002412A (en) A method for dependable M2M data transport using secondary intermediate node

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

122 Ep: pct application non-entry in european phase